function execute($requests) { $u = $GLOBALS['AUTH']->uid(); $sessid = session_id(); $sql = 'SELECT c_member_id, nickname FROM c_member WHERE c_member_id <> ?'; $params = array($u); $members = db_get_all($sql, $params); $sql = 'SELECT c_member_id, nickname FROM c_member WHERE c_member_id = ?'; $params = array($u); $my_info = db_get_row($sql, $params); array_unshift($members, $my_info); $id = $requests['target_id']; $group = biz_getGroupData($id); if ($u != $group['admin_id']) { die('アクセスできません。'); } foreach ($members as $key => $value) { if (biz_isGroupMember($value['c_member_id'], $id)) { $members[$key]['joined'] = true; } else { $members[$key]['joined'] = false; } } $this->set('inc_navi', fetch_inc_navi('h')); $this->set("c_invite_list", $members); $this->set("group", $group); $this->set("c_member_id", $u); return 'success'; }
function biz_isPermissionTodo($u, $biz_todo_id) { $biz_todo = biz_getTodo($biz_todo_id); $public_flag = $biz_todo['public_flag']; $biz_group_id = $biz_todo['biz_group_id']; $target_c_member_id = $biz_todo['c_member_id']; $writer_id = $biz_todo['writer_id']; switch ($public_flag) { case 'group': //グループのメンバーにのみ権限が与えられるTodo $biz_group = biz_getGroupData($biz_group_id); if (biz_isGroupMember($u, $biz_group_id)) { return true; } elseif (empty($biz_group)) { //グループが存在しない場合はTodoを公開する return true; } else { return false; } break; case 'private': //投稿者にのみ権限が与えられるTodo if ($target_c_member_id == $u) { return true; } elseif ($writer_id == $u) { //非公開の共有Todo return true; } else { return false; } break; default: //すべてのメンバーに権限が与えられるTodo return true; } }